jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
16,722 Commits 33 Branches 583 Tags
f77296bb2c361034ebc76b69815d0bb56b1a4e79
Commit Graph

125 Commits

Author SHA1 Message Date
Girish Ramakrishnan
1a73ddea23 req.connection.remoteAddress is deprecated 
(cherry picked from commit 74f4849144)
 2025-02-01 09:16:11 +01:00
Girish Ramakrishnan
dc3d23c27b oidc: flatten the export list 2024-12-02 08:31:35 +01:00
Johannes Zellner
e35b36643c Add more oidc debugs 2024-11-18 18:09:01 +01:00
Johannes Zellner
16fa339025 Add refresh_token grant type 2024-11-18 18:07:32 +01:00
Girish Ramakrishnan
051b0e0fd3 oidc: set a refresh token ttl to avoid warning 
oidc-provider NOTICE: default ttl.RefreshToken function called, you SHOULD change it in order to define the expiration for RefreshToken artifacts.
 2024-11-18 15:29:14 +05:30
Johannes Zellner
8621fbda79 Enable refresh tokens for oidc provider 2024-10-29 16:20:53 +01:00
Girish Ramakrishnan
1b22ea661c avatar: deliver .png images 
this is required for mastodon atleast. if the oidc avatar url, returns
an svg, it crashes!

the profile pic png was created using inkspace:
inkscape -w 96 -h 96 avatar-default-symbolic.svg -o avatar-default-symbolic.png
 2024-10-18 22:39:18 +02:00
Vladimir D
227fdf10dd OIDC: id_token added to client response types 2024-09-20 14:16:40 +02:00
Vladimir D
3ce74d04d0 OIDC: groups claim added to make groups provisioned 2024-09-19 13:08:20 +02:00
Girish Ramakrishnan
525e48ae59 json middleware is part of Express v4.16.0 2024-07-19 22:26:24 +02:00
Girish Ramakrishnan
bcf497b460 translation.js -> translations.js 
kept confusing my why i can't find this file! this is in line
with the rest of our code
 2024-07-05 12:45:27 +02:00
Girish Ramakrishnan
bf51a60986 change args of translation.translate 2024-07-05 12:42:33 +02:00
Johannes Zellner
f715e21306 oidc: raise login event on consent not login form itself 2024-06-25 13:24:46 +02:00
Girish Ramakrishnan
649c06b641 notification: do not send login notification for external users 2024-06-13 16:55:35 +02:00
Girish Ramakrishnan
6b4df0bd65 lint 2024-06-13 16:55:35 +02:00
Girish Ramakrishnan
6eda037544 lint: const fixes 2024-05-13 17:02:20 +02:00
Johannes Zellner
7eda1136ea oidc: starting with new .json model files is not worth a log line 2024-04-29 09:19:37 +02:00
Girish Ramakrishnan
366f247910 oidc: only start in set callback 2024-04-27 11:51:10 +02:00
Johannes Zellner
ec7dabc1c7 oidc: also allow login on aliased app domains 2024-04-19 19:03:23 +02:00
Johannes Zellner
21d7438bbe proxyauth: user OpenID instead of basic auth 2024-04-15 15:59:16 +02:00
Johannes Zellner
76c4002a04 oidc: Add profile picture claim 2024-04-14 12:05:45 +02:00
Johannes Zellner
36ab5800a3 oidc: enable CORS for internal apps 2024-04-11 19:10:29 +02:00
Johannes Zellner
028b820d48 oidc: Reload the login view if session is gone 2024-04-04 17:32:58 +02:00
Johannes Zellner
68724bcb4f Revert "oidc: enable rpInitiated logout" 
This reverts commit a6f4b2896a.
 2024-04-04 10:41:00 +02:00
Johannes Zellner
6186bb54e4 Revert "oidc: allow post logout redirect back to the app" 
This reverts commit 3ddf72a24d.
 2024-04-04 10:40:53 +02:00
Johannes Zellner
a4e822dec2 Make autologin token only one-time use 2024-04-04 10:29:36 +02:00
Johannes Zellner
5744cb7318 auto login from activation 2024-04-04 10:26:48 +02:00
Johannes Zellner
2f6a66dbd7 oidc: enable auto login when a token is provided 2024-04-03 18:11:21 +02:00
Johannes Zellner
3ddf72a24d oidc: allow post logout redirect back to the app 2024-04-03 15:49:03 +02:00
Johannes Zellner
a6f4b2896a oidc: enable rpInitiated logout 2024-04-02 20:38:12 +02:00
Girish Ramakrishnan
8a63f0368e Fix parsing of displayName 
Currently, we only have one field for the name. The first part is
first name. The rest is last name. Obviously, this won't work in all
cases but is the best we can do for the moment.
 2024-02-06 16:53:03 +01:00
Johannes Zellner
9efe399399 oidc: add picture claim 2024-01-29 13:55:31 +01:00
Girish Ramakrishnan
cf707ba657 move the require 2024-01-23 12:44:23 +01:00
Girish Ramakrishnan
5b7667fa4d external ldap: ensure dashboard login does totp check 2024-01-08 11:55:35 +01:00
Girish Ramakrishnan
344578006c make oidc test stable 2023-12-03 20:04:17 +01:00
Johannes Zellner
5e7bc78d35 Set custom oidc client id and secret in the backend 2023-10-06 15:16:57 +02:00
Girish Ramakrishnan
0e195679bf Make tests pass 2023-10-01 13:42:02 +05:30
Johannes Zellner
31ef53c530 Revert "Set custom csp rule for OpenID consent form submit based on schema" 
This reverts commit b0115acf42.
 2023-09-26 23:37:13 +02:00
Johannes Zellner
b0115acf42 Set custom csp rule for OpenID consent form submit based on schema 2023-09-26 22:32:37 +02:00
Girish Ramakrishnan
d2c702f890 eventlog: always use AuditSource objects as source field 2023-08-28 08:13:56 +05:30
Johannes Zellner
40884705b4 Fixup demo note text 2023-08-17 13:45:07 +02:00
Johannes Zellner
98e43a6f5a Add login note for demo Cloudron 2023-08-17 13:38:47 +02:00
Girish Ramakrishnan
4b1b38be63 make tests work again 2023-08-14 11:08:38 +05:30
Girish Ramakrishnan
eee49a8291 move dashboard setting into dashboard.js 2023-08-11 21:04:10 +05:30
Girish Ramakrishnan
27ce8f9351 oidc: fix crash when rendering error 2023-08-11 18:38:03 +05:30
Johannes Zellner
cacf0d34f5 Add oidc views footer 2023-08-11 13:53:23 +02:00
Johannes Zellner
e9f3f13564 Only always use token types from tokens.js 2023-08-07 19:26:04 +02:00
Girish Ramakrishnan
67ee82abb9 remove settings.dashboardOrigin 2023-08-04 22:10:14 +05:30
Girish Ramakrishnan
e0d07c3c19 settings: move branding settings into branding.js 2023-08-02 23:02:40 +05:30
Girish Ramakrishnan
e1fd369c6d settings: move cookie secret into oidc 2023-08-02 23:02:40 +05:30